Community FAQ
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Spam email contining only image (or hyperlink)

Go to solution
ALF28
Super solver

‎24-04-2022 10:42 - edited ‎24-04-2022 10:56

DATING EMAILS

I have had 4 of these, they are sent to a group of people usually up to 20 at a time.

They contain a link and an inline embedded  image which shows as a block of text in a foreign language, as I do switch off images and html. They contain base 64 encoding.

The sender uses a host in the netherlands.

As the emails are repeated many times over a number of days,the object may be to deliver malware using the embeddded html content -

The embedded content/image would get through normal image blocking, but I read in text format with html unticked, it at least prevents any  obcene images getting through.

see

Using Base64 for malware obfuscation - Infosec Resources (infosecinstitute.com)

The good news is that virgin are detecting these emails as spam. Base 64 encoded content (Embedded content) is is a common method of adding inline images which converts binary to html text and the email size  can be very small or very large. I have had one that cause buffer overflow with many images.

I am not sure why I am a target for dating emails as I am too old and have never used such sites, but do regularly get a spate of such emails which usually have images of people.

The alternative is to use attached images which need to be clicked on, but by embedding the image it enforces the reader to see the image as an inline image which is part of the email.

alf28

 

 

0 Kudos
21 REPLIES 21

Go to solution
ALF28
Super solver
In response to ALF28

‎15-06-2022 16:29 - edited ‎15-06-2022 16:39

DATING EMAILS  15/06/2022

I had another dating type email, the spammer  has changed the sender email address but this is from the same server as the previous dating emails based in the netherlands. The email has embedded content. I have added the sender address to my filters.

I have not had any dating emails  for 7 weeks.

All recent spam is picked up by virgin approx only 2 per week, including dating, nhs presciptions,inheritance scam, pharmacy, clothing.

The more dangerous ones are the inheritance scam and the dating emails.

alf28

0 Kudos

Go to solution
ALF28
Super solver
In response to ALF28

‎19-06-2022 09:29 - edited ‎19-06-2022 09:42

spam email dangers

I sometimes get emails that have embedded images  (more recently coming) which enable spammers to insert inline linked text or images/base64 encoded content.

I do switch off the html but these emails  can bypass image blocking and  they can contain hyperlinks or inline hosted embedded images and link back to the spammers server  and provide data of your system, IP address etc, to the spammer. this is a technique often used by advertisers/spammer/hackers as it can bypass any image blocking setting.

I also get emails which appear to be from a particular web site/domain, and when investigated the web site may be fake or set up as an affilate or phishing website which is not the owner of the advertised product/company and sending emails with embedded images which may enable hackers to get  data and enable a back  door/trojan into your compter system.

see-

Why just opening a spam email could open the door for fraudsters (lovemoney.com)

You Opened An Email (With Attachment). Here's What Happens (dataoverhaulers.com)

The best thing to do with such spam emails is just not to click on them at all, so they do not open and leave then in the spam folder.

alf28

 

0 Kudos
Top